DoS Protection through Credit Based Metering -- Simulation-Based Evaluation for Time-Sensitive Networking in Cars

TL;DR

This paper proposes a credit-based metering algorithm for Ethernet in cars to protect against DoS attacks, adapting to Time-Sensitive Networking protocols, and evaluates it through simulation.

Contribution

It introduces a novel credit-based metering algorithm for Ethernet in vehicles that enhances security against DoS attacks within Time-Sensitive Networking.

Findings

Effective DoS attack mitigation demonstrated in simulation

Adaptive metering improves network resilience

Compatibility with IEEE 802.1Qci and Credit Based Shaping

Abstract

Ethernet is the most promising solution to reduce complexity and enhance the bandwidth in the next generation in-car networks. Dedicated Ethernet protocols enable the real-time aspects in such networks. One promising candidate is the IEEE 802.1Q Time-Sensitive Networking protocol suite. Common Ethernet technologies, however, increases the vulnerability of the car infrastructure as they widen the attack surface for many components. In this paper proposes an IEEE 802.1Qci based algorithm that on the one hand, protects against DoS attacks by metering incoming Ethernet frames. On the other hand, it adapts to the behavior of the Credit Based Shaping algorithm, which was standardized for Audio/Video Bridging, the predecessor of Time-Sensitive Networking. A simulation of this proposed Credit Based Metering algorithm evaluates the concept.